This is a potential security issue, you are being redirected to https://csrc.nist.gov.
Do not attempt to implement any of the settings without first testing them in a non-operational environment. Please see the National Checklist Program (NCP) website for configuration guides related to other Windows Based systems and applications.
The draft download packages contain recommended security settings; they are not meant to replace well-structured policy or sound judgment. Furthermore, these recommendations do not address site-specific configuration issues. Care must be taken when implementing these settings to address local operational and policy concerns.
These recommendations were developed at the National Institute of Standards and Technology, which collaborated with DoD and Microsoft to produce the Windows 7, Windows 7 Firewall, Internet Explorer 8 USGCB. Pursuant to title 17 Section 105 of the United States Code, these recommendations are not subject to copyright protection and are in the public domain. NIST assumes no responsibility whatsoever for their use by other parties, and makes no guarantees, expressed or implied, about their quality, reliability, or any other characteristic. We would appreciate acknowledgement if the recommendations are used.
The following sections provide the downloads for the Windows Vista Firewall USGCB Content. VHDs are also available to use for testing. Additional information can be found in the FAQ.
Please refer to the top-level Microsoft Content Page for the listing of all USGCB settings and associated hash values.USGCB Major Version 2.1.x.1 Known Issues
Please refer to the top-level Microsoft Content Page for the listing of all known issues relating to USGCB content and associated hash values.
|Date||Documentation||GPOs||SCAP Content||CCE to 800-53 Mappings|
|April 20, 2015||No changes||No changes||USGCB minor version 184.108.40.206 Final Release SCAP content posted.||No changes|
|February 25, 2015||USGCB SCAP 1.2 Settings posted||No changes||USGCB minor version 220.127.116.11 Release Candidate SCAP content posted.||No changes|
|February 25, 2015||No changes||No changes||Removed SCAP 1.0 USGCB content.||No changes|
|November 28, 2012||No changes||No changes||SCAP 1.2 (Oval 5.10) content signature updated; no other change to content.||No changes|
|May 21, 2012||No changes||No changes||Content bundle repackaged, no content changes.||No changes|
|April 23, 2012||No changes||No changes||Content bundle repackaged, no content changes.||No changes|
|March 22, 2012||No changes||No changes||Content bundle repackaged, no content changes.||No changes|
|November 14, 2011||No changes||No changes||USGCB major version 2.0.x.0 SCAP content posted||No changes|
|November 10, 2011||No changes||USGCB GPOs posted||No changes||No changes|
|October 17, 2011||No changes||No changes||USGCB major version 2.0.x.0 SCAP content posted||No changes|
|October 05, 2011||No changes||No changes||No changes||National Checklist Program's Machine-readable CCE to 800-53 Mappings linked|
|September 21, 2011||USGCB major version 1.2.x.0 Settings and Known Issues posted||No changes||USGCB major version 2.0.x.0-Alpha-Candidate SCAP content posted||No changes|
Security and Privacy: configuration management, security automation, vulnerability management